sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-02-19 21:57:57 +03:00
Code
7,234 Commits 62 Branches 1,152 Tags
Commit Graph

7234 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Andrew Tridgell
69264362bd r11467: yay! mmc now accepts our schema. The trick was to get all the OID 
mappings right for the attributeTypes field of the aggregate schema

now to add the display specifiers and I won't need the proxy module
any more
 2007-10-10 13:45:40 -05:00
Andrew Bartlett
6535959fd7 r11466: Clear up some memory leaks in smbclient. 
Andrew Bartlett
 2007-10-10 13:45:40 -05:00
Andrew Tridgell
3af867a3f4 r11463: more progress on the schema generator. mmc now accepts all parts 
except the attributeTypes fields of the Aggregrate record. Proxying
just that field and the display specifiers gives us a working mmc
client

hopefully i'll work out what it doesn't like about the attributeTypes
field soon
 2007-10-10 13:45:40 -05:00
Andrew Bartlett
0a41941189 r11462: Fix the build: somehow I lost the header for this samba-specific hack. 
Andrew Bartlett
 2007-10-10 13:45:39 -05:00
Andrew Tridgell
ddbca6e832 r11459: display a schemaIDGUID as a guid in ldif, making it easier to work 
with schemas in ldbedit
 2007-10-10 13:45:39 -05:00
Andrew Tridgell
ebdd1393fd r11458: fixed our ejs smbscript interfaces to use arrays where appropriate. In 
js arrays are a special type of object where the length property is
automatic, and cannot be modified manually. Our code was manually
setting length, which made it abort when someone passed in a real ejs
array. To fix this we need to create real arrays instead of objects,
and remove the code that manually sets the length
 2007-10-10 13:45:39 -05:00
Andrew Tridgell
46e91f269c r11457: fixed the winreg IDL and torture code so key and value enumerations 
work again. The automatic value() is fine for the length, but cannot
be used for the size as the size is not the number of bytes being
sent, but the number of bytes that the server is allowed to use in the
reply
 2007-10-10 13:45:39 -05:00
Andrew Tridgell
b8694c58f5 r11456: fixed a ejs parser bug for delete() statements 2007-10-10 13:45:39 -05:00
Andrew Bartlett
c0ba414a38 r11453: Fix warning, for a case that just can't happen. 
Andrew Bartlett
 2007-10-10 13:45:38 -05:00
Andrew Bartlett
55b89899ad r11452: Update Heimdal to current lorikeet, including removing the ccache side 
of the gsskrb5_acquire_cred hack.

Add support for delegated credentials into the auth and credentials
subsystem, and specifically into gensec_gssapi.

Add the CIFS NTVFS handler as a consumer of delegated credentials,
when no user/domain/password is specified.

Andrew Bartlett
 2007-10-10 13:45:38 -05:00
Andrew Tridgell
c913f466cd r11447: fixed a problem with the ldap server spinning using CPU time 2007-10-10 13:45:38 -05:00
Andrew Bartlett
c105112902 r11442: Don't use BASE-NEGNOWAIT any more. It is a mostly meaningless test. 
Andrew Bartlett
 2007-10-10 13:45:38 -05:00
Andrew Bartlett
e63be25d0b r11441: Remove the auth_domain module from Samba4, as we will only do things 
via winbindd in Samba4.

Andrew Bartlett
 2007-10-10 13:45:38 -05:00
Andrew Bartlett
848831a155 r11440: Actually check the right thing for 'is this a machine account' (thanks metze). 
Andrew Bartlett
 2007-10-10 13:45:37 -05:00
Andrew Bartlett
767c5ca7be r11439: Make presedence on strcmp comparison clear, and fill in 
logon_parameters for the auth subsystem.

Andrew Bartlett
 2007-10-10 13:45:37 -05:00
Andrew Bartlett
a3abffc758 r11438: Move enum samr_RejectReason into misc.idl so I can use it in a global 
prototype.

Andrew Bartlett
 2007-10-10 13:45:37 -05:00
Andrew Bartlett
64b9ea642b r11437: Fix (valid!) use of uninitialised value warnings. 
Andrew Bartlett
 2007-10-10 13:45:37 -05:00
Andrew Tridgell
38ea11510c r11436: this is work in progress for generating the schema we need for our ADS 
ldap server. It's still not quite right, and I'm chasing down a few
errors that mmc throws up, but its a lot closer than it was. I had to
change the approach quite substantially over the last couple of days,
but this approach now seems to be working out.
 2007-10-10 13:45:37 -05:00
Stefan Metzmacher
25a35c6977 r11429: - add owned,active,sgroup vs. unique, group and mhomed replica 
special group vs. special group will be done later

metze
 2007-10-10 13:45:36 -05:00
Stefan Metzmacher
70166bb2a9 r11426: add owned,active,normalgroup vs. * replica sections 
metze
 2007-10-10 13:45:36 -05:00
Stefan Metzmacher
a70cf6f87b r11425: add owned,active,unique vs. multi homed section 
metze
 2007-10-10 13:45:36 -05:00
Volker Lendecke
fed26bc4fd r11424: Fix an uninitialized variable warning 2007-10-10 13:45:36 -05:00
Volker Lendecke
a043ef33dc r11423: Add some TALLOC_CTX 2007-10-10 13:45:36 -05:00
Volker Lendecke
d5aef4e2f9 r11422: Remove unused args 2007-10-10 13:45:35 -05:00
Stefan Metzmacher
061e2e67da r11419: add owned,unique,active vs. special group replica section 
metze
 2007-10-10 13:45:35 -05:00
Stefan Metzmacher
1db4d8e456 r11418: - add unique,owned,active vs. normal group section 
- we handle incoming release demands for that

metze
 2007-10-10 13:45:35 -05:00
Jelmer Vernooij
ad0019ad4e r11417: Add TODO for the build system 2007-10-10 13:45:35 -05:00
Stefan Metzmacher
dccaceee18 r11416: add some more comments 
metze
 2007-10-10 13:45:35 -05:00
Stefan Metzmacher
7843b6c5c8 r11415: - create a seperate nbt socket for handling incoming packets 
- remove useless .release attribute, we have seperate tests for this
  now
- add first owned,active vs. replica test, including handling incoming
  name queries from the server

metze
 2007-10-10 13:45:34 -05:00
Andrew Bartlett
7e3c22f57b r11414: Add passing around of logon_parameters to Samba4 auth_winbind 
Andrew Bartlett
 2007-10-10 13:45:34 -05:00
Andrew Bartlett
2ee7ed000e r11413: More comments, plus always check (and update) the credentials chain, 
regardless the authentication result on a particular user.

Andrew Bartlett
 2007-10-10 13:45:34 -05:00
Andrew Bartlett
8800e9b5b0 r11412: These comments may not be much, but my eyes scan code with even 
minimal comments much better (much like volker scans code of less than
80 cols better ;-)

Andrew Bartlett
 2007-10-10 13:45:34 -05:00
Andrew Bartlett
8ed975df52 r11411: Add to Samba4 the Samba3 patch I just posted for machine account 
logins (changing the winbindd interface).

Clean up the wbsrv_samba3_async_epilogue() handling, as it was mixing
auth and other replies, such that all replies were having the auth
error strings set.  We now do a better job of filling in the right
errors in the right places.

Andrew Bartlett
 2007-10-10 13:45:33 -05:00
Andrew Bartlett
302219928f r11410: Fix rejoin as a BDC by modifying, rather than trying to recreate, the 
server reference.

Andrew Bartlett
 2007-10-10 13:45:33 -05:00
Andrew Bartlett
e754234a17 r11409: The use of 'password server = ' here is still bogus, but for now at 
least don't allow binding to become uninitialised.

Andrew Bartlett
 2007-10-10 13:45:33 -05:00
Andrew Tridgell
647cb90360 r11408: fixed the mapping of ldb errors to ldap errors in the ldap server 2007-10-10 13:45:33 -05:00
Andrew Bartlett
a7eb796cf5 r11407: Push 'recreate account' logic into libnet/libnet_join.c. We don't 
return the pesky USER_EXISTS 'error' code any more, and it is much
easier to handle this inline.

Andrew Bartlett
 2007-10-10 13:45:32 -05:00
Andrew Bartlett
f140117535 r11406: Clean up uninitialised value warnings found by -01. 
The warnings were caused by the structure assignements, which we don't
need to do.  The actual values are filled in by the NDR layer later.

Andrew Bartlett
 2007-10-10 13:45:32 -05:00
Andrew Bartlett
6a7bb391ba r11405: Ensure we can never have secret4 be uninitialised. Found after 
volker's urging on the use of -O1.

Andrew Bartlett
 2007-10-10 13:45:32 -05:00
Andrew Bartlett
de83b8cd18 r11404: Another torture test and a new WERR. 
Andrew Bartlett
 2007-10-10 13:45:32 -05:00
Andrew Tridgell
c192bcb79d r11403: improved the error handling in the ildap ldb backend. Now passes 
through all ldap errors except on search. Search errors are only
available via ldb_errstring() until we decide how to fix ldb_search().
 2007-10-10 13:45:31 -05:00
Andrew Bartlett
0141ed309a r11402: In response to comments by volker, expand our Netlogon DsRGetDCName 
IDL and testsuites.  The server-side of this remains a stub, we should
probably be doing ldb searches for the server reference record.

Andrew Bartlett
 2007-10-10 13:45:31 -05:00
Andrew Bartlett
76c2d204d0 r11401: A simple hack to have our central credentials system deny sending LM 
authentication for user@realm logins and machine account logins.

This should avoid various protocol downgrade attacks.

Andrew Bartlett
 2007-10-10 13:45:31 -05:00
Stefan Metzmacher
a29a107d95 r11400: fix compiler warnings 
metze
 2007-10-10 13:45:31 -05:00
Andrew Bartlett
e82fbb58dd r11399: Add another case where we need to fallback, if the KDC isn't there. 
Andrew Bartlett
 2007-10-10 13:45:31 -05:00
Andrew Bartlett
da24074860 r11394: Allow KDC unreachable as another 'forget about gssapi' error on SPNEGO. 
Andrew Bartlett
 2007-10-10 13:45:30 -05:00
Andrew Bartlett
cb0b3c0057 r11393: Avoid error messages and get more correctness with long plaintext passwords. 
Andrew Bartlett
 2007-10-10 13:45:30 -05:00
Volker Lendecke
a0b4036ba6 r11392: After confirmation from Love, fix a compiler warning 2007-10-10 13:45:30 -05:00
Jelmer Vernooij
dab450a501 r11391: Add includedir to the list of directories to create 2007-10-10 13:45:30 -05:00
Jelmer Vernooij
31406f7aa5 r11388: Move dot-generating to a seperate perl executable 2007-10-10 13:45:30 -05:00